Senior Cybersecurity Identity Engineer

Join Our Team as a Senior Cybersecurity Identity Engineer! Cox Automotive is on the lookout for a skilled and passionate Senior Cybersecurity Identity Engineer to enhance our Identity and Access Management (IAM) team. In this vital role, you'll be at the forefront of designing, developing, and maintaining cutting-edge identity management and authentication solutions, including Single Sign-On (SSO) and Multi-Factor Authentication (MFA). You will contribute significantly to the creation of secure and scalable access systems that not only improve user experience but also ensure strict compliance with security standards and regulations. Key Success Factors: A comprehensive understanding of IAM technologies, principles, and best practices is crucial, including knowledge of various IAM solutions, identity management techniques, and secrets management. Practical experience within a workforce and customer authentication environment. An in-depth understanding of authentication architecture and design. Your Responsibilities Will Include: Designing and overseeing authentication and SSO solutions across various enterprise applications and platforms. Managing integrations of identity providers (IdPs) like Okta, Azure AD, and Ping Identity with internal and third-party applications. Developing and enforcing secure authentication mechanisms using protocols such as SAML, OAuth 2.0, OpenID Connect, and Kerberos. Collaborating with application owners and developers to enable seamless SSO and federated identity integrations. Implementing and managing multi-factor authentication (MFA) policies and technologies. Troubleshooting and resolving authentication and access-related incidents. Documenting architecture, configurations, and procedures related to authentication and access systems. Staying up-to-date with emerging authentication technologies, threats, and best practices. Minimum Requirements: A Bachelor's degree in a related discipline and a minimum of 4 years of relevant experience, or a Master's degree with 2 years experience, a Ph.D. with up to 1 year of experience, or 16 years of experience in a related field. Experience in designing, implementing, and maintaining authentication solutions for workforce and CIAM personnel. Ability to effectively communicate the goals of cybersecurity policies and procedures to both technical and non-technical audiences. Exceptional customer service, writing, and executive presentation skills. A collaborative mindset to foster productive relationships with key stakeholders and work closely with other cybersecurity teams to implement best practices. Consultative approach to navigate complex topics with employees and leadership. Skill in evaluating risks and making informed recommendations based on potential impact and likelihood. Required Technical Skills: Deep knowledge of IAM concepts including authentication, authorization, SSO, MFA, RBAC, and ABAC. Experience with IAM platforms like Okta, Ping Identity, Azure AD, or SailPoint. Proficient in modern authentication protocols such as SAML 2.0, OAuth 2.0, OIDC, Kerberos, and Radius. Experience in implementing Single Sign-On (SSO) and federated identity solutions. Understanding of identity federation standards and cross-domain authentication. Experience with MFA solutions (e.g., Duo, Microsoft Authenticator, YubiKey, Google Authenticator). Experience with passwordless authentication methods (e.g., FIDO2, Windows Hello for Business). Familiarity with cybersecurity frameworks (e.g., ISO 27000, NIST, FFIEC) and compliance regulations (e.g., GDPR, FFIEC, GLBA). Solid understanding of identity and access management systems and protocols. Preferred Technical Skills: Experience in developing connectors for user provisioning, with a detailed understanding of the System for Cross-domain Identity Management (SCIM). Expertise in federating authentication and implementing relevant protocols. Experience in deploying identity controls and establishing conditional access policies in Entra ID. Familiarity with current cybersecurity architectures like zero trust. Knowledge of the AWS Well-Architected Framework. Preferred Qualifications: Experience in the automotive industry. Background with Big Four consulting or Fortune 500 companies. Relevant industry certifications such as CISSP, CEH, OSCP, Azure, AWS, CISM, and CISA. Please note that to be employed in this role, you will need to clear a pre-employment drug test. While Cox Automotive does not currently administer pre-employment drug tests for marijuana, we maintain a drug-free workplace policy. The Benefits: The company offers its employees flexible vacation policies, seven paid holidays, and up to 160 hours of paid wellness leave annually. Additional paid time off is available for bereavement, voting, jury duty, volunteer work, military service, and parental leave. Cox Automotive employees benefit from working with transformative technology, enhancing the experiences of car buyers and dealers. By being part of iconic consumer brands like Autotrader and Kelley Blue Book, you’ll work in a collaborative environment central to Cox's culture. Benefits may include health care insurance, retirement planning (401(k)), and more. For more details on benefits, please visit our benefits page. Cox is proud to be an Equal Employment Opportunity employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, national origin, sex, sexual orientation, gender identity, disability, veteran status, or any other characteristic protected by law.